If that's how you feel about having a program like DenyHosts running by
default, do you feel the same way about having a firewall running and
configured out of the box.
Is a firewall a sysadmin's or packager's choice?
--
finid
On 2013-02-19 11:03, Guillaume Rousse wrote:
Le 19/02/2013 11:06, fi...@linuxbsdos.com a écrit :
Sounds like a good idea to have something in place out of the box.
PC-BSD, which has SSH server running by default also has DenyHosts
configured and running by default.
That's a asysadmin choice, not a packager one. Bloating every
machines just because it may be useful in some cases doesn't seems a
good idea.
And the best defense against ssh scan bot is to forbid password-based
authentications, BTW.
